General
-
Target
49a987fc6b3f7f5d1e9db05f3e2a4250_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240605-jnmbfaah46
-
MD5
49a987fc6b3f7f5d1e9db05f3e2a4250
-
SHA1
0dfc6804f1db3dbd390c3689adbc0eac6c96e006
-
SHA256
50a33c105b3addbd2444dfa2c176ac686bc41bc92e1a2e3866bab1c262088033
-
SHA512
52ef5f4c787cd12e55e87e189971632a48d1113736b44dd459fa0f855aeb92edde0e74102babad06b4ff3f84f495a69de94273242dbfdd21482b76d54434a470
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLp:5vEN2U+T6i5LirrllHy4HUcMQY6Kp
Static task
static1
Behavioral task
behavioral1
Sample
49a987fc6b3f7f5d1e9db05f3e2a4250_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
49a987fc6b3f7f5d1e9db05f3e2a4250_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
49a987fc6b3f7f5d1e9db05f3e2a4250_NeikiAnalytics.exe
-
Size
206KB
-
MD5
49a987fc6b3f7f5d1e9db05f3e2a4250
-
SHA1
0dfc6804f1db3dbd390c3689adbc0eac6c96e006
-
SHA256
50a33c105b3addbd2444dfa2c176ac686bc41bc92e1a2e3866bab1c262088033
-
SHA512
52ef5f4c787cd12e55e87e189971632a48d1113736b44dd459fa0f855aeb92edde0e74102babad06b4ff3f84f495a69de94273242dbfdd21482b76d54434a470
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLp:5vEN2U+T6i5LirrllHy4HUcMQY6Kp
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1